How to do IDP Initiated SSO with AD Connect with IIS

How to do IDP Initiated SSO with AD Connect with IIS

Published: 09/30/2016
If you wish to do direct IDP initiated SSO with AD Connect with IIS thereby avoiding the use of the initiate SSO URL from PingOne, you can do so by entering the URL in the following format into the address field of the browser:
https://<AD Connect ServerName>/ADconnect/startsso.aspx?sp=pingone&saasid=<SaaS Application you wish to go to>
Each URL component is as follows:
- AD Connect ServerName: The sever name that is resolved when doing SSO
- SaaS Application you wish to go to: The SaaS id of the configured application in PingOne to redirect to. For example the SaaS ID for Salesforce is a2753a97-da58-4908-a0df-cc2c7dbc4633

As an example, if your AD Connect server name is sso.myorg.com and you want to SSO to Salesforce.com, the url would look like the following:
https://sso.myorg.com/ADconnect/startsso.aspx?sp=pingone&saasid=a2753a97-da58-4908-a0df-cc2c7dbc4633
Category:
ADConnect , 
KB or other URL: